From d7072c0b6130a66b9adedb4e2d9c1faa49a1b295 Mon Sep 17 00:00:00 2001 From: Mikhail Swift Date: Tue, 8 Aug 2023 13:11:23 -0400 Subject: [PATCH] fix: update changed signer flags in tests --- .github/workflows/test-github-token.yml | 4 ++-- cmd/verify_test.go | 1 + test/test.yaml | 7 +++++-- 3 files changed, 8 insertions(+), 4 deletions(-) diff --git a/.github/workflows/test-github-token.yml b/.github/workflows/test-github-token.yml index a7ae8145..68ed6888 100644 --- a/.github/workflows/test-github-token.yml +++ b/.github/workflows/test-github-token.yml @@ -25,6 +25,6 @@ jobs: run: make build - name: Test - run: ./bin/witness run -l debug -s test -a github --enable-archivist -o test.json --fulcio https://fulcio.sigstore.dev --fulcio-oidc-client-id https://oauth2.sigstore.dev/auth --fulcio-oidc-issuer sigstore --timestamp-servers https://freetsa.org/tsr -- echo "hello" > test.txt + run: ./bin/witness run -l debug -s test -a github --enable-archivist -o test.json --signer-fulcio-url https://fulcio.sigstore.dev --signer-fulcio-oidc-issuer https://oauth2.sigstore.dev/auth --signer-fulcio-oidc-client-id sigstore --timestamp-servers https://freetsa.org/tsr -- echo "hello" > test.txt - name: log output - run: cat test.json \ No newline at end of file + run: cat test.json diff --git a/cmd/verify_test.go b/cmd/verify_test.go index f0fb294c..e2793163 100644 --- a/cmd/verify_test.go +++ b/cmd/verify_test.go @@ -167,6 +167,7 @@ func TestRunVerifyKeyPair(t *testing.T) { } signers, err := loadSigners(context.Background(), so, map[string]struct{}{"file": {}}) + require.NoError(t, err) artifactPath := filepath.Join(workingDir, "test.txt") step1Args := []string{ diff --git a/test/test.yaml b/test/test.yaml index 096b23ab..cb291417 100644 --- a/test/test.yaml +++ b/test/test.yaml @@ -13,11 +13,14 @@ # limitations under the License. run: - key: testkey.pem + signer-file-key-path: testkey.pem step: build trace: true + attestations: + - environment + - git sign: - key: testkey.pem + signer-file-key-path: testkey.pem outfile: policy-signed.json verify: attestations: